$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45732.roa File: AS45732.roa (raw, json) Hash identifier: V6rrpICxQA6od+PXZSQTBsfPvC4kJflDpYOLyQJBvMQ= Subject key identifier: BF:F9:55:09:61:10:1B:8A:BF:8D:79:72:6E:80:42:0A:C1:8F:67:1E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5A753ED3A7091CBA3A5A1DC5077ABB7E62BAC42B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45732.roa Signing time: Wed 08 Apr 2026 06:50:13 +0000 ROA not before: Wed 08 Apr 2026 06:45:13 +0000 ROA not after: Wed 07 Apr 2027 06:50:13 +0000 asID: 45732 IP address blocks: 103.93.188.0/24 maxlen: 24 103.165.248.0/24 maxlen: 24 103.196.166.0/23 maxlen: 24 202.61.126.0/24 maxlen: 24 202.137.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 05:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:75:3e:d3:a7:09:1c:ba:3a:5a:1d:c5:07:7a:bb:7e:62:ba:c4:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 8 06:45:13 2026 GMT Not After : Apr 7 06:50:13 2027 GMT Subject: CN=BFF9550961101B8ABF8D79726E80420AC18F671E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:75:2a:05:e9:c7:f9:b9:9f:fb:04:d8:36:56: 18:b6:bd:51:36:4b:37:a7:db:26:26:8b:c6:f1:e0: be:38:38:65:f7:7c:5d:b2:60:b2:e9:13:4d:cb:e9: b1:5d:d1:34:9d:50:46:ee:e8:46:7f:b3:9e:57:85: d9:4b:17:92:24:44:f6:04:85:d4:d2:c6:f0:0f:44: 1c:67:f4:94:15:2f:bc:16:11:cc:2d:23:80:6b:14: 4b:37:f2:1d:21:cc:3d:67:4d:18:09:fe:af:b4:fb: f6:84:40:fc:63:2e:df:b5:2d:7b:a6:69:c2:f7:86: 6d:a8:76:e5:24:92:9d:be:67:a7:66:8a:0f:72:b3: 94:4e:12:06:fd:93:46:75:5d:4f:8f:d6:25:99:f5: c3:3a:48:75:69:30:28:da:5f:81:a8:26:73:6d:3f: 33:99:09:96:98:54:4a:60:e5:80:c1:93:05:4b:79: 3f:70:35:a5:31:23:68:91:ce:d4:6f:a1:12:24:ee: 5f:24:64:cf:d6:30:52:2f:57:d2:6e:cc:fc:11:a9: 21:ba:b4:f9:6a:de:5d:a9:76:55:8c:07:e8:18:f3: 25:65:8c:a3:85:71:0e:21:72:9d:9e:ee:26:31:a2: 86:9e:16:29:94:9d:6e:f3:80:eb:bc:86:65:b2:2d: 63:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F9:55:09:61:10:1B:8A:BF:8D:79:72:6E:80:42:0A:C1:8F:67:1E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.93.188.0/24 103.165.248.0/24 103.196.166.0/23 202.61.126.0/24 202.137.230.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:e3:e7:a8:a1:ac:4a:b6:f1:b6:ec:fd:e6:01:7b:a6:66:e3: 24:5e:44:f8:f6:62:2a:e9:87:b5:cc:13:a9:9a:0c:1f:fc:57: fc:2d:8b:58:b4:ed:e6:40:50:14:f9:91:e6:02:7d:3e:09:4d: 9f:f0:15:25:18:84:58:bb:58:ad:d9:77:3d:93:63:0f:02:f3: ae:59:99:15:81:10:77:b5:fd:65:82:b9:65:26:e4:c5:f1:4f: fa:bb:8c:cd:28:99:86:22:d7:f6:44:3f:9a:d5:5f:e3:71:46: 3e:1b:45:83:64:eb:dc:e6:f1:6a:9f:e2:ec:9e:01:39:e4:ca: 6a:fa:c8:18:10:8a:a8:77:86:fe:dc:54:39:bf:ab:20:fd:28: 15:aa:cb:5c:cf:c4:54:b7:da:72:48:e6:92:4d:dd:02:ce:70: 3e:f0:52:3c:cf:f5:e8:70:2d:01:52:8b:b4:b1:6e:ef:58:ce: ee:de:55:0b:f1:64:74:19:06:59:d0:1a:f0:39:7f:4e:72:d1: 7f:ef:3b:9b:d0:26:84:8d:d1:f3:4f:ab:22:d2:5a:6b:d0:36: 0b:12:59:e5:e9:5a:cb:64:59:0b:08:99:0b:97:da:a1:b4:35: 6e:de:23:1f:67:38:72:e7:78:05:77:71:a8:ed:ae:52:85:ec: 27:03:64:1c -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUWnU+06cJHLo6Wh3FB3q7fmK6xCswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQwODA2NDUxM1oX DTI3MDQwNzA2NTAxM1owMzExMC8GA1UEAxMoQkZGOTU1MDk2MTEwMUI4QUJGOEQ3 OTcyNkU4MDQyMEFDMThGNjcxRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMF1KgXpx/m5n/sE2DZWGLa9UTZLN6fbJiaLxvHgvjg4Zfd8XbJgsukTTcvp sV3RNJ1QRu7oRn+znleF2UsXkiRE9gSF1NLG8A9EHGf0lBUvvBYRzC0jgGsUSzfy HSHMPWdNGAn+r7T79oRA/GMu37Ute6ZpwveGbah25SSSnb5np2aKD3KzlE4SBv2T RnVdT4/WJZn1wzpIdWkwKNpfgagmc20/M5kJlphUSmDlgMGTBUt5P3A1pTEjaJHO 1G+hEiTuXyRkz9YwUi9X0m7M/BGpIbq0+WreXal2VYwH6BjzJWWMo4VxDiFynZ7u JjGihp4WKZSdbvOA67yGZbItYxcCAwEAAaOCAecwggHjMB0GA1UdDgQWBBS/+VUJ YRAbir+NeXJugEIKwY9nHjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzMyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQAZ128AwQAZ6X4AwQBZ8SmAwQAyj1+AwQAyonmMA0GCSqGSIb3DQEB CwUAA4IBAQB/4+eooaxKtvG27P3mAXumZuMkXkT49mIq6Ye1zBOpmgwf/Ff8LYtY tO3mQFAU+ZHmAn0+CU2f8BUlGIRYu1it2Xc9k2MPAvOuWZkVgRB3tf1lgrllJuTF 8U/6u4zNKJmGItf2RD+a1V/jcUY+G0WDZOvc5vFqn+LsngE55Mpq+sgYEIqod4b+ 3FQ5v6sg/SgVqstcz8RUt9pySOaSTd0CznA+8FI8z/XocC0BUou0sW7vWM7u3lUL 8WR0GQZZ0BrwOX9OctF/7zub0CaEjdHzT6si0lpr0DYLElnl6VrLZFkLCJkLl9qh tDVu3iMfZzhy53gFd3Go7a5ShewnA2Qc -----END CERTIFICATE-----Generated at Fri Apr 17 08:16:41 2026 by rpki-client